>I am sure this has been covered before, but I have >not had time to go through all the postings lately. > >We are running a 192.198.x.x private network. that's not private according to RFC1918. 192.168.0.0 is private. probably a typo. We will be running 2 DNS servers - one behind >the proxy, and one in front of it. Obviously the >one in front of the Proxy will handle all incoming >Internet requests, and the proxy has ability to map >real #'s to private #'s. I am just curious on how >I should tackle this issue... Anthony's idea is certainly a valid way to go. You'll also get a range of suggestions on DNS + proxy configs on the BIND users list, www.ISC.org, where you'll find the best advice from top DNS experts. >What should my checklist be for this implementation? I assume you want Imail to be a public rather than private mail server? If so, running all that public SMTP traffic through your proxy would be inefficient, esp if you have serious mail traffic. A better way would be to us a "bastion mail host" outside the proxy in your DMZ. The bastion host would be the MX host for your Imail domain and would receive all incoming mail, reject spam, and forward to the proxy port and Imail. The proxy setup would be simplified and secured by restricting the proxy to receive SMTP traffic only from the ip address of the bastion host. Rather than have Imail deliver outgoing mail to final destination servers, you use Imail "send all mail through gateway" where the gateway is the ip of the bastion mail host, which would do all the dirty work of delivering mail (DNS lookups, dealing with slow servers, queuing and retrying later, etc). Imail shoots its outgoing mail a full proxy speed to the bastion mail server. For the bastion mail host, that's free: http://IMGate.MEIway.com. IMGate would give you better anti-spam and DNS validations, all kept out of the proxy server, than Imail can. Plus your proxy's setup and job would be much simpler. Len Please visit http://www.ipswitch.com/support/mailing-lists.html to be removed from this list.
